Published 2 days ago • loading... • Updated 1 day ago

Open-source malware doubles, data exfiltration attacks dominate - Help Net Security

Summary by Help Net Security

There’s been a notable shift in the types of threats targeting software developers, with a total of 17,954 open source malware packages identified in Q1 2025, according to Sonatype. Quarterly breakdown (Source: Sonatype) The Q1 figure represents a significant decrease from the more than 34,000 malicious packages discovered last quarter, largely due to a sharp drop in security holdings packages. However, compared to the same period last year, the…

This story is only covered by news sources that have yet to be evaluated by the independent media monitoring agencies we use to assess the quality and reliability of news outlets on our platform. Learn more here.

8 Articles

All

Left

Center

Right

InfoWorld

Sonatype warns of 18,000 open source malware packages

Software supply chain security company Sonatype uncovered 17,954 open-source malware packages during Q1 2025, the company revealed in its Open Source Malware Index. Sonatype’s Open Source Malware Index for Q1 2025 was introduced April 2. A proliferation of open source malware, or malicious open source packages, poses unprecedented risk in the form of software supply chain attacks, the company said. Open source malware is intentionally crafted to…

1 day ago

Read Full Article

Help Net Security

Open-source malware doubles, data exfiltration attacks dominate - Help Net Security

2 days ago

Read Full Article

SecurityBrief New Zealand

+5 Reposted by 5 other sources

Sonatype reports rise in open source malware to 17,954

Sonatype's latest Open Source Malware Index reveals a staggering rise in malware, with over 17,900 packages identified in Q1 2025, reflecting evolving threats.

2 days ago

Read Full Article

Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/year